Embed Size (px)
Citation preview
© 2017 Infoblox Inc. All rights reserved. Implementing Infoblox Network Insight Cisco ACI Integration, 8/2017 Page 1 of 10
DEPLOYMENT GUIDE
Implementing Infoblox Network Insight Cisco ACI Integration.
© 2017 Infoblox Inc. All rights reserved. Implementing Infoblox Network Insight Cisco ACI Integration, 8/2017 Page 2 of 10
Contents Introduction ...................................................................................................................................... 3Overview.......................................................................................................................................... 3Requirements .................................................................................................................................. 3Deployment Instructions .................................................................................................................. 3
Configure Cisco APIC information. ........................................................................................... 4
Viewing Discovered Data. ......................................................................................................... 5
Troubleshooting ............................................................................................................................... 9
© 2017 Infoblox Inc. All rights reserved. Implementing Infoblox Network Insight Cisco ACI Integration, 8/2017 Page 3 of 10
Introduction Cisco ACI (Application Centric Infrastructure) is Cisco’s SDN (software-defined networking) solution for data centers. This deployment guide illustrates how to configure Infoblox’s Network Insight to discover Cisco ACI components and end hosts.
Overview
In addition to discovering various network devices and hosts in Network Insight, you can now discover assets within Cisco ACI such as:
• Tenants and VRFs • IP subnets • Bridge Domains • Fabric Nodes • APIC controller • EPG • End hosts
Requirements The following items are required for Cisco ACI Integration:
• Network Insight license. • Infoblox Network Discovery Appliance. • Infoblox NIOS 8.2.1 or later is required.
Deployment Instructions Note: This deployment guide covers only Cisco ACI discovery deployment instructions. Please review the Network Insight Deployment Guide or NIOS Administrator’s Guide for Network Insight configuration instructions.
© 2017 Infoblox Inc. All rights reserved. Implementing Infoblox Network Insight Cisco ACI Integration, 8/2017 Page 4 of 10
Configure Cisco APIC information. Note: Refer to the NIOS 8.2 Administrators Guide for Network View configuration.
1. Navigate to Grid à Grid Manager à Discovery. Click on the Discovery member.
2. Click on the Edit button on the Services screen. Click on the Cisco APIC Configuration button.
Note: Talk with your Cisco ACI administrator to get the IP address, username, and password. The Cisco ACI administrator can also provide a CA certificate from the APIC.
3. Enter the IP address of the Cisco APIC. 4. Enter the Protocol which is either HTTP or HTTPS. If you decide to use HTTPS, you will need to add a
CA certificate. 5. Enter the Network View that corresponds to the network in step 4. 6. Enter the Username for the APIC login. 7. Enter the Password for the APIC login. 8. Click on the Save button and then the Save & Close button.
© 2017 Infoblox Inc. All rights reserved. Implementing Infoblox Network Insight Cisco ACI Integration, 8/2017 Page 5 of 10
Viewing Discovered Data. Below is a table showing the mappings of ACI specific components into IPAM objects.
ACI Network Insight Fabric Node (leaves and spine) Device record under Devices tab APIC Controller Device record under Devices tab Tenant Tenant attribute for Networks and IP addresses under
IPAM tab Bridge Domain Bridge Domain attribute for Networks and IP
addresses under IPAM tab EPG EPGattributeforIPaddressesunderIPAMtab
After waiting about 15 minutes for the discovery to complete, you can now view your disco
1. Navigate to Data Management à Devices. Change the network view by selecting one of the network views that were created earlier in this document. For example, network view MGMT was chosen.
2. In the previous screen shot, you can now see the SDN Controller and 3 SDN elements; LEAF1, LEAF2,
and SPINE. 3. You can drill down on the SDN Controller and SDN elements to gather information on interfaces,
networks, IP addresses, assets, and components. Below are screen shots of each for one of the leaf nodes:
© 2017 Infoblox Inc. All rights reserved. Implementing Infoblox Network Insight Cisco ACI Integration, 8/2017 Page 6 of 10
© 2017 Infoblox Inc. All rights reserved. Implementing Infoblox Network Insight Cisco ACI Integration, 8/2017 Page 7 of 10
Take note of the MAC addresses in the Assets section of Leaf1. They are end hosts. They will also be seen in the IP addresses section below.
© 2017 Infoblox Inc. All rights reserved. Implementing Infoblox Network Insight Cisco ACI Integration, 8/2017 Page 8 of 10
4. Navigate to Data Management à IPAM to view the discovered networks. Take note of the networks with
bridge domains and tenants.
© 2017 Infoblox Inc. All rights reserved. Implementing Infoblox Network Insight Cisco ACI Integration, 8/2017 Page 9 of 10
5. You can also drill down on the tenant network to see what IP addresses are used and unused. Notice the MAC addresses of the end hosts? They are the same as in the Assets section for Leaf1.
Troubleshooting 1. Try to ping the IP address of the APIC. If successful, then go to the next step. 2. Download a support bundle. Navigate to Grid à Grid Manager àMembers.
© 2017 Infoblox Inc. All rights reserved. Implementing Infoblox Network Insight Cisco ACI Integration, 8/2017 Page 10 of 10
3. Click on the Discovery member which is amn.com in this example. Navigate to Toolbar à Download and click on Support Bundle.
4. A compressed file will be created and can be downloaded to your Downloads directory. The file name is
supportBundle.tar.gz. Uncompress this file. 5. After uncompressing, change directory to the newly create subdirectory called SupportBundle. Search for
the compressed file called nm_discovery_support_bundle.tgz. Uncompress this file. 6. The subdirectory Augusta is now created in the subdirectory supportBundle. Change directory to
Augusta/snmp_logs. Open the latest dataEngine.log.<year>-<month>-<day> file. The information related to Cisco ACI you can be found by searching string 'AciObject' or IP address of Cisco APIC/LEAF. For example:
2017-08-01 16:11:47 [info] 13627 (worker14) 10.40.19.10/AciObject-3707429403927922829: AciObject: collection completed 2017-08-01 16:11:47 [info] 13627 (worker14) 10.40.19.10/AciObject-3707429403927922829: Done (663ms)
2017-08-01 16:20:24 [info] 22904 (worker01) 10.40.19.12/AciObject-4004721853816867796: ACI request POST /api/aaaLogin.json failed: Request to ACI failed: 401 Unauthorized (401: Username or password is incorrect - FAILED local authentication) 2017-08-01 16:20:24 [error] 22904 (worker01) 10.40.19.12/AciObject-4004721853816867796: Cannot login to ACI controller 10.40.19.10: Request to ACI failed: 401 Unauthorized (401: Username or password is incorrect - FAILED local authentication)
2017-08-01 16:22:25 [info] 23101 (worker13) 1.1.1.1/AciObject-6001678353361986687: ACI request POST /api/aaaLogin.json failed: Request to ACI failed: 500 Can't connect to 1.1.1.1:80 (Connection timed out) 2017-08-01 16:22:25 [error] 23101 (worker13) 1.1.1.1/AciObject-6001678353361986687: AciObject: Failed collection: Cannot login to ACI controller 1.1.1.1: Request to ACI failed: 500 Can't connect to 1.1.1.1:80 (Connection timed out)
